Skip to content

Commit

Permalink
Do not require leading quotes for high-entropy strings in ini and yaml
Browse files Browse the repository at this point in the history
  • Loading branch information
anatolii-paloaltonetworks committed Apr 29, 2024
1 parent 7171977 commit ddd3750
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion detect_secrets/plugins/high_entropy_strings.py
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ def __init__(self, charset: str, limit: float) -> None:

# We require quoted strings to reduce noise.
# NOTE: We need this to be a capturing group, so back-reference can work.
self.regex = re.compile(r'([\'":=])\s*([{}]+)([\'"]?)'.format(re.escape(charset)))
self.regex = re.compile(r'([\'":=])\s*([{}]+)([\'"]|$)'.format(re.escape(charset)))

def analyze_string(self, string: str) -> Generator[str, None, None]:
for result in self.regex.findall(string):
Expand Down

0 comments on commit ddd3750

Please sign in to comment.